django http://cgit.adnoto.dev/django.git/atom?h=stable%2F6.0.x 2026-02-24T23:36:09Z 2026-02-24T23:36:09Z Mariusz Felisiak felisiak.mariusz@gmail.com 2026-01-18T20:26:56Z urn:sha1:090f1da56e663e9f840e307e73b5cf011cb7b061 https://github.com/psf/black/releases/tag/26.1.0 Backport of 6cff02078799b7c683a0d39630d49ab4fe532e7c from main. 2025-10-14T12:15:01Z Thibaut Decombe thibaut.decombe@gmail.com 2025-07-13T18:01:02Z urn:sha1:b077982b3eb4be9bb86d670221902442efb7ab31 Backport of d0c8f89c942d1379724bdd37127076d13452f71d from main. 2025-07-25T11:50:02Z Mike Edmunds medmunds@gmail.com 2024-12-23T23:01:36Z urn:sha1:9ab1991689000821a4d86b8617e1c1455a327482 - Changed EmailMessage.message() to construct a "modern email API" email.message.EmailMessage and added policy keyword arg. - Added support for modern MIMEPart objects in EmailMessage.attach() (and EmailMessage constructor, EmailMessage.attachments list). - Updated SMTP EmailBackend to use modern email.policy.SMTP. Deprecated: - Attaching MIMEBase objects (replace with MIMEPart) - BadHeaderError (modern email uses ValueError) - SafeMIMEText, SafeMIMEMultipart (unnecessary for modern email) - django.core.mail.forbid_multi_line_headers() (undocumented, but exposed via `__all__` and in wide use) - django.core.mail.message.sanitize_address() (undocumented, but in wide use) Removed without deprecation (all undocumented): - EmailMessage.mixed_subtype - EmailMultiAlternatives.alternative_subtype - Support for setting (undocumented) EmailMessage.encoding property to a legacy email.charset.Charset object Related changes: - Dropped tests for incorrect RFC 2047 encoding of non-ASCII email address localparts. This is specifically prohibited by RFC 2047, and not supported by any known MTA or email client. (Python still mis-applies encoded-word to non-ASCII localparts, but it is a bug that may be fixed in the future.) - Added tests that try to discourage using Python's legacy email APIs in future updates to django.core.mail. 2025-07-23T23:17:55Z django-bot ops@djangoproject.com 2025-07-23T03:41:41Z urn:sha1:69a93a88edb56ba47f624dac7a21aacc47ea474f Rewrapped long docstrings and block comments to 79 characters + newline using script from https://github.com/medmunds/autofix-w505. 2025-07-17T17:01:16Z Mike Edmunds medmunds@gmail.com 2025-07-16T22:01:49Z urn:sha1:fc793fc303a3d516ab51bb21aa317031caabe7b4 In public mail APIs, changed less frequently used parameters from keyword-or-positional to keyword-only, emitting a warning during the required deprecation period. 2025-04-17T15:00:20Z Sarah Boyce 42296566+sarahboyce@users.noreply.github.com 2025-04-16T18:44:00Z urn:sha1:8a0ad1ebe313a4f4fca6e9068c06ee400d15b8a4 2025-03-27T12:27:33Z antoliny0919 antoliny0919@gmail.com 2025-03-27T07:43:57Z urn:sha1:849f8307a5bb33465252d0891a9b2c47dde65889 2025-02-02T01:49:07Z nessita 124304+nessita@users.noreply.github.com 2025-02-02T01:49:07Z urn:sha1:d15454a6e84a595ffc8dc1b926282f484f782a8f Regression in e626716c28b6286f8cf0f8174077f3d2244f3eb3. Thanks buffgecko12 for the report and Sarah Boyce for the review. 2024-09-03T12:22:32Z Natalia 124304+nessita@users.noreply.github.com 2024-08-19T17:47:38Z urn:sha1:8c35a0a903fd979e3262fe300ca084ffbfb300d6 On successful submission of a password reset request, an email is sent to the accounts known to the system. If sending this email fails (due to email backend misconfiguration, service provider outage, network issues, etc.), an attacker might exploit this by detecting which password reset requests succeed and which ones generate a 500 error response. Thanks to Thibaut Spriet for the report, and to Mariusz Felisiak, Adam Johnson, and Sarah Boyce for the reviews. 2024-08-23T14:13:31Z nessita 124304+nessita@users.noreply.github.com 2024-08-23T14:13:31Z urn:sha1:046a354217b80d4e8d9b575843d72413886f6bac